-
Notifications
You must be signed in to change notification settings - Fork 10.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[NEW] Two Factor Auth #6476
[NEW] Two Factor Auth #6476
Conversation
…RocketChat/Rocket.Chat into improvements/2fa-implementation
@rafaelks @laggedHero You guys will need to implement this.
|
…RocketChat/Rocket.Chat into improvements/2fa-implementation
…at/Rocket.Chat into improvements/2fa-implementation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It tells you to make sure you have a copy of your backup codes but there don't appear to be backup codes at this point.
We should either Generate them right away and show them in the alert telling them to store them somewhere safe... Or change the wording initially from "Regenerate Backup codes" to "Generate Backup codes" Because until they have been generated once they cannot be "Regenerated"
Also even when I click Regenerate I get no codes.
<div class="section-content border-component-color"> | ||
<div class="alert pending-background pending-color pending-border"> | ||
<strong> | ||
WARNING: Once you enable this, you will not be able to login on the native mobile apps (Rocket.Chat+) using your password until they implement the 2FA. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Can we change this a bit? Maybe something like:
WARNING: Please make sure your mobile app supports 2FA authentication before enabling. See <a href="https://github.com/RocketChat/Rocket.Chat.iOS/issues/375">Rocket.Chat+ iOS</a> or <a href="https://github.com/RocketChat/Rocket.Chat.Android/issues/248">Rocket.Chat+ Android</a> for current status.
WARNING: Please make sure your mobile app supports 2FA authentication before enabling. See Rocket.Chat+ iOS or Rocket.Chat+ Android for current status.
Feels less critical :)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I believe this was only meant to be temporary until the mobile applications actually support it, which is why it isn't translated and is only in english.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Not too worried about the translation. If for what ever reason this makes it to a release before its supported. This is much better lingo to have its less critical toward the mobile guys :)
@geekgonecrazy please try it clearing you if you clear your |
Can we get a server up somewhere with this enabled? That way we can all test it out easily and correctly? And that way the mobile developers can test it out |
@graywolf336 I'm trying to get it running on heroku with no success =( |
@sampaiodiego that was it. Works fine now. 😁 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Deployment updated: https://pr-6476.rocket.chat/ @ggazzo if you want to try and reproduce :) |
The screenshots contain this warning that login on the native mobile apps will not work once 2FA is enabled. Wouldn't it be possible to accept an append the 2FA token to the password as a workaround until the apps get updated? |
@rodrigok @sampaiodiego how does this work with the rest api? |
I tried to enable 2FA on my production server and tested it both with Authy and Google Authenticator and neither with success; it just replies back Sorry for the lack of details -- but I don't have anything more substantial than this at the moment. PS: I am using version |
@k0nsl that's no good. I'll give a try and see if I can reproduce |
I have to say I've seen synchronization problems.. @k0nsl have sure both server and apps are synced (same date and hour).. Maybe we should allow like 1 minute delay |
This should maybe be a configurable setting? Some servers in business may want to keep the time delay very short. Others may want to allow a little longer grace period |
there you go #6859 |
Should this work whether LDAP authentication is enabled or not? Thanks! |
As
…On Wed, May 3, 2017, 6:05 PM shakalandy ***@***.***> wrote:
Should this work whether LDAP authentication is enabled or not? Thanks!
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
<#6476 (comment)>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AE0YkcJ4QdffR3krFvxDI1y_0BU2_afVks5r2HR7gaJpZM4MorkB>
.
|
Hi @sampaiodiego and @rodrigok, I am evaluating RC. We have configured RC to our Atlassian Crowd server. This is working fine so far in our testing. I am also seeking to use 2FA which seems to not work for us for unknown reasons. Steps
Questions
Thank you for considering my comment and questions. |
I bet this is related to using crowd as authentication. Might be skipping 2FA code. Please open an issue with details. Regarding Fido/U2F we don’t yet. But I personally think that would be amazing to add. Love my u2f key |
@RocketChat/core
Closes #1034